近年來,無線網路成為一股趨勢,越來越多的公共場所,如旅館、機場、圖書館,甚至便利商店都提供無線網路的服務。使用者透過無線網路存取所需的服務。有些網路服務只有合法者可以存取。而無線網路的特性為廣播媒體,使得非法使用者容易透過此廣播媒體竊取合法使用者個人資料,偽裝成合法使用者存取網路服務。所以我們需要一個有效可靠的身份確認機制。本研究主要針對無線網路身份確認機制提出二個方法,一個僅使用安全單向雜湊函式,來達到無線網路身份確認機制,另一個是基於公開金鑰密碼學,亦可達到無線網路身份確認機制。在2003年,Chien和Jan兩位學者提出了一個混合式的無線網路身份確認機制,這機制包含二個子機制,一個為註冊網域身份確認機制,一個為非註冊網域身份確認機制,我們將以我們的二種方法來改進2003年 Chien 和 Jan 所提出的混合式無線網路身份確認機制的弱點。
Recently, the technology of wireless networks has become popular. More and more public places, such as hotels, airports, libraries, and even convenient stores establish many wireless network access points to provide people to access the services in Internet. Users need to be authenticated with remote servers before they can access the requested services provided by the servers. However, wireless networks are broadcasting medium that anyone can eavesdrop or modify the message on the medium. An attacker therefore can learn or cheat the private information of a legal user from the medium if we provide no protection of the message on the medium. Without protection, an attacker can impersonate successfully another legal user to access the network services in a very high probability. Therefore, we need a reliable and effective identity authentication scheme to prevent the impersonating attack. In this study, we propose two security wireless networks identity authentication schemes, one is an encrypted-nonce-with-hash-based schemes, the other is an encrypted-nonce-with-public-key-based Schemes. In 2003, Chien and Jan proposed an identity authentication scheme for hybrid networking environments. The scheme consisted of two subschemes; an intra-domain authentication subscheme, and an inter-domain authentication subscheme. Our proposed schemes can correct their security problem.